CVE-2024-22114 | Zabbix up to 5.0.42/6.0.30/6.4.15/7.0.0rc2 System Information Widget permissions

Inserito da Angelo Barbosa | Ago 9, 2024 | CVE

A vulnerability was found in Zabbix up to 5.0.42/6.0.30/6.4.15/7.0.0rc2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component System Information Widget. The manipulation leads to preservation of permissions.

This vulnerability is known as CVE-2024-22114. The attack can be launched remotely. There is no exploit available.

CVE-2024-22114 | Zabbix up to 5.0.42/6.0.30/6.4.15/7.0.0rc2 System Information Widget permissions

Post correlati

CVE-2023-27739 | easyXDM 2.5 xdm_e cross site scripting

CVE-2024-33896 | Cosy+ prior 21.2s10/22.1s3 code injection

CVE-2024-33849 | ci solution CI-Out-of-Office Manager up to 6.0.0.77 hard-coded key

CVE-2024-7037 | open-webui up to 0.3.8 /api/pipelines/upload path traversal